Monthly Meeting

July 26, 2017

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

Agenda / Announcements

➢Welcome to Parsons

➢Any guests or new members in attendance?

➢(ISC)2 CPE Submissions – Individual Responsibility

➢CISSP Chapter Badges / Shirts and Jackets with ISSA-Central MD Logo

➢CISSP & Study Group

➢Future Meeting schedule

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

Please respect the speakers and other members,

Silence or turn off cell phones and electronic devices,

No video or audio recordings.

Thanks

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

Board of Directors❖ Bill Smith, Jr., CISSP, GSNA, CEH, GPEN, GCFA, GCFE -

President

❖ Sidney Spunt, CISSP - VP Operations

❖ Kevin Drury, CISSP – Secretary

❖ Lorenzo Thweatt, CISSP - VP Professional Development

❖ Chuck Dickert, CISSP, CISA, CISM, CAPM – VP Education

❖ Jack Holleran, CISSP, CAP, (ISC)2 Fellow– Treasurer

❖ Steve Chan, CISSP, PMP – VP Membership

❖ Tom Bakry, CISSP, CISA, PMP– VP Outreach

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

Central Maryland Chapter Sponsors

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

New Members

Since June 2017 Meeting

286 Total Members

Paulette Bostic

Stephen Lawlor

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

CISSP Study Group

Start: September 12, 2017

End: December 19, 2017

Review and Practice Exam

14 Sessions Total

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

8

Support Our SIGs!

• Financial

• Ms. Andrea Hoy

• Healthcare

• Mr. Andy Reeder

• Security Awareness

• Mr. Kelley Archer

• Women In Security

• Ms. Domini Clark

• Rhonda Farrell

http://www.issa.org/?page=SIGs

9

ISSA INTERNATIONAL

CONFERENCE 2017

October 9-11, 2017

San Diego, CA, USA

#ISSAConf

Save the date and join us for solution-oriented and innovative sessions,

all designed to help you get your hands around some of security's

hottest topics. https://www.issa.org/page/IIC2017RSVP

10

2017 Scholarship Giving Program

▪ Donate Online:

http://issa-foundation.org

▪ Email Us for Info:wissig@issa.org

WIS SIG Scholarship Fund

11

ISSA International Journal Articles

http://www.issa.org/?page=ISSAJournal

Please contact SIGs@issa.org if you are interested in submitting a SIG

column entry!

ISSA 2017 Meetings and EventsDate Speaker Organization Topic

July 26, 2017 Jeff Roth NCC Group Security

Services, Inc.

Contemporary Challenges for

Cloud Service Providers

Seeking FedRAMP

ComplianceAugust 23, 2017 Michelle

LapuenteLogRhythm TBD

September 27, 2017 Curtis Bragdon Code Dx Application Security

October 25, 2017 Jeffrey

StutzmanWapack Labs Cyber Threat Intelligence

November 15, 2017 George

HendersonGuidePoint Security TBD

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

Jeff Roth is a Regional Director in NCC Group’s Risk Management and Governance organization. He has over

30 years as a global information assurance specialist and cybersecurity engineer delivering excellence in

consulting to government, commercial, and non-profit organizations. Jeff’s achievements include:

- Member of the NIST Cybersecurity Working Group that developed the National Initiative for Cybersecurity

Education training course.

- Contributor and SME for the 4th and 5th editions of COBIT and COBIT 5 for Security.

- Co-author of the ISACA 26th Edition of the 2016 CISA Review Manual

- 2006 recipient of the ISACA’s John Kuyers Best Speaker/Conference Contributor Award

Prior to working at NCC Group Jeff served as a US Air Force Information Assurance Officer, Special Operations

Command Cybersecurity Engineer, Director of Technology Risk Management Service at RSM McGladrey, and

Manager of Internal Audit and Government Relations for the United Space Alliance (Prime Contractor for the

NASA Space Shuttle Program) where he was awarded the NASA Astronauts Achievement Award - “Silver

Snoopy”

His professional credentials include CISSP-ISSEP, CISA, and CGEIT

July 26, 2017 Speaker

Jeff Roth, NCC Group Security Services, Inc.

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore

The Federal Risk and Authorization Management Program, FedRAMP, is a

government-wide assessment and compliance program providing a standardized

approach for Cloud Service Providers (CSP) and other organizations delivering SaaS

and related products and services to government clients. Although FedRAMP is a well

thought out and structured framework, CSPs and other providers will invariably face

serious challenges when seeking an assessment, potentially resulting in significant

losses in time, money, and reputation if not prepared. Engaging knowledgeable

advisory services and experienced third-party assessors is essential to successful

outcomes and greater business opportunity.

July 26, 2017 Topic

Contemporary Challenges for Cloud Service Providers Seeking

FedRAMP Compliance

Central Maryland Chapter Sponsors:

Bay Dynamics, Clearswift, LogRhythm, Logical Operations

Parsons Cyber, Phoenix TS, Red Owl Analytics, Tenable Network Security, Vencore